cosmoscrew / ssrf-playground
A playground to practice SSRF Attacks against web apps
☆17Updated 6 years ago
Alternatives and similar repositories for ssrf-playground:
Users that are interested in ssrf-playground are comparing it to the libraries listed below
- A tool that can help detect and takeover subdomains with dead DNS records☆12Updated 6 years ago
- Everything about xss protection technology☆15Updated 5 years ago
- A multi-threaded scanner that helps identify CORS flaws/misconfigurations☆19Updated 5 years ago
- View screenshots as a slideshow over http☆15Updated 4 years ago
- String or worldlist encoder for use in fuzzing or web application testing☆18Updated 5 years ago
- A better dns bruteforcer written in golang☆13Updated 6 years ago
- Burp Extension for copying requests safely. It redacts headers like Cookie, Authorization and X-CSRF-Token for now. More support can be a…☆17Updated 4 years ago
- Scan and import relevant requests directly to burp!☆9Updated 5 years ago
- A Burp Extender plugin that will allow you to tamper with requests containing compressed, serialized java objects.☆24Updated 5 years ago
- OWASP ZAP add-on to detect reflected parameter vulnerabilities efficiently☆12Updated 4 years ago
- ☆20Updated 5 years ago
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆9Updated 2 years ago
- A simple tool with the power of "Go" to find the hidden Vhosts defined at the server.☆18Updated 6 years ago
- The Recon scanning tool scans websites for open files & directories specified in the custom config file. Default server configuration fil…☆15Updated 6 years ago
- Boxer: A fast directory bruteforce tool written in Python with concurrency.☆15Updated 3 years ago
- A Burp Suite content discovery plugin that add the smart into the Buster!☆31Updated 7 years ago
- Secrets detection based on regular expressions.☆23Updated last year
- Slides of the talk on Injection attacks in apps with NoSQL Backends, given at null OWASP Bangalore monthly meet on 27th April 2019☆22Updated 5 years ago
- Simple tools to handle string and generate subdomain permutations☆14Updated 2 years ago
- Take a list of URIs and print all the of the paths☆10Updated 4 years ago
- A parallel scanner that utilises axiom to spin up servers and parallel scan using masscan.☆16Updated 4 years ago
- PHP tool to test XSS☆23Updated 5 years ago
- A tools for JavaScript Recon☆21Updated 4 years ago
- Simple webinterface combining different recon tools.☆12Updated 6 years ago
- Golang code to crawl website, extract links from html, paths from JavaScript code, follow and repeat.☆12Updated 6 years ago
- ☆10Updated 6 years ago
- Check for know iframeBuster XSS☆11Updated 4 months ago
- A tool for checking a hash:pass pot file for hashes from a user:hash file☆12Updated 8 years ago
- Scripts that I've written that others may find useful☆14Updated 2 years ago
- Alpha version code of Recon UI☆14Updated 6 years ago